CASB (Cloud Access Security Broker)

A CASB enforces security policies between users and cloud services.

Updated: 2026-03-05

Definition

A Cloud Access Security Broker (CASB) is a policy enforcement point for cloud usage.

It helps with visibility, compliance, data protection, and threat protection for SaaS/IaaS usage.

Key points

Visibility into cloud app usage (shadow IT)
Policy enforcement (DLP, access controls)
Often integrates with identity providers and logs

Common mistakes

Thinking CASB replaces IAM (it complements IAM).
Ignoring integration requirements (logs, identity, endpoints).

Related exams

CompTIA Security+ (SY0-701)

Free Security+ SY0-701 mini test. Continue in the app for offline packs and detailed explanations.

Microsoft Azure Fundamentals (AZ-900)

Free AZ-900 mini test. Continue in the app for offline packs and detailed explanations.

Related terms

Want to practice this in exam-style questions?

Use the mini tests on each exam page, then continue in the app for offline packs and detailed explanations.